A collection of OSX and iOS security resources
updated at May 10, 2024, 4:23 p.m.
Open source security data lake for threat hunting, detection & response, and cybersecurity analytics at petabyte scale on AWS
updated at May 10, 2024, 3:45 p.m.
Open source version of Google Authenticator (except the Android app)
updated at May 10, 2024, 1:55 p.m.
Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attacks
updated at May 10, 2024, 12:42 p.m.
Static Application Security Testing (SAST) engine focused on covering the OWASP Top 10, to make source code analysis to find vulnerabilities right in the source code, focused on a agile and easy to implement software inside your DevOps pipeline. Support the following technologies: Java (Maven and Android), Kotlin (Android), Swift (iOS), .NET Full Framework, C#, and Javascript (Node.js).
updated at May 10, 2024, 12:03 p.m.
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTrace GitHub App: https://github.com/marketplace/lunatrace-by-lunasec/
updated at May 10, 2024, 10:41 a.m.
Tools and packages that are used for countering forensic activities, including encryption, steganography, and anything that modify attributes. This all includes tools to work with anything in general that makes changes to a system for the purposes of hiding information.
updated at May 10, 2024, 10:40 a.m.
Code Scanning/SAST/Static Analysis/Linting using many tools/Scanners + OpenAI GPT with One Report (Code, IaC) - Betterscan Community Edition (CE)
updated at May 10, 2024, 10:12 a.m.
Open Source SIEM (Security Information and Event Management system).
updated at May 10, 2024, 5:46 a.m.
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
updated at May 9, 2024, 8:07 p.m.
Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.
updated at May 9, 2024, 7:07 p.m.
Legion is an open source, easy-to-use, super-extensible and semi-automated network penetration testing tool that aids in discovery, reconnaissance and exploitation of information systems.
updated at May 9, 2024, 6:04 p.m.
preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.
updated at May 9, 2024, 7:19 a.m.